Pages: [1]

Author Topic: Encoded XSS Url  (Read 1097 times)

0 Members and 1 Guest are viewing this topic.

Offline lailaila

  • /dev/null
  • *
  • Posts: 7
  • Cookies: 1
    • View Profile
Encoded XSS Url
« on: September 08, 2012, 12:43:24 pm »
hi,
there is encoded xss, it looks: <script>alert("xss")</script>
script: %3Cscript%3Ealert(%22xss%22)%3C%2Fscript%3E


if web security blocking html chars, so you can use this code. :)
goodluck :)
Report to moderator   Logged

Offline relax

  • Sir
  • ***
  • Posts: 562
  • Cookies: 114
  • The one and only
    • View Profile
Re: Encoded XSS Url
« Reply #1 on: September 08, 2012, 05:45:13 pm »
yeah heres a site for xss exapels
http://ha.ckers.org/xss.html
at the bottom there is converter to
Report to moderator   Logged

Offline Phage

  • VIP
  • Overlord
  • *
  • Posts: 1280
  • Cookies: 120
    • View Profile
Re: Encoded XSS Url
« Reply #2 on: September 08, 2012, 07:37:22 pm »
This must be some of the first you Will learn in xss. And this Will in most cases not even work since thèrese are a very few sites which has such a poor Security.
Report to moderator   Logged
"Ruby devs do, in fact, get all the girls. No girl wants a python, but EVERY girl wants rubies" - connection

"It always takes longer than you expect, even when you take into account Hofstadter’s Law."
Pages: [1]